NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

kern/53214: user triggerable KASSERT in exec_runproc

>Number:         53214
>Category:       kern
>Synopsis:       user triggerable KASSERT in exec_runproc
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    kern-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Wed Apr 25 19:45:00 +0000 2018
>Originator:     Alexander Nasonov
>Release:        NetBSD 8.99.14
	NetBSD neva 8.99.14 NetBSD 8.99.14 (GENERIC_KASLR) #0: Sat Apr 14 21:57:15 BST 2018  alnsn@neva:/home/alnsn/netbsd-current/clean/src/sys/arch/amd64/compile/obj/GENERIC_KASLR amd64
	Architecture: x86_64
	Machine: amd64
	Running a script with a relative path in the sheebang can trigger
	KASSERT and panic the system.
	cd /tmp
	cat <<EOF >
	> #!sh
	> echo hi
	> EOF
	chmod +x
	ln -s /bin/echo sh

	panic: kernel diagnostic assertion "resolvedname[0] == '/'" failed: file "/home/alnsn/netbsd-current/clean/src/sys/kern/kern_exec.c", line 939

	Full panic screen:

	Not known.

Home | Main Index | Thread Index | Old Index